Skills
skills/jeremylongshore/claude-code-plugins-plus-skills/hubspot-ci-integration/Snyk

hubspot-ci-integration

Fail

Audited by Snyk on Mar 25, 2026

Risk Level: HIGH
Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

  • Insecure credential handling detected (high risk: 1.00). The prompt includes explicit commands that embed secret values verbatim (e.g., gh secret set ... --body "pat-na1-...") and instructs copying/pasting tokens, which requires the LLM to handle/output secrets directly.

Issues (1)

W007
HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata
Risk Level
HIGH
Analyzed
Mar 25, 2026, 04:42 PM
Issues
1